ProHoster > Блог > Kev tswj hwm > Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE

Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE

Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE
Niaj hnub no peb yuav tham txog yuav ua li cas kom sai thiab yooj yim deploy ob peb virtual servers nrog txawv operating systems ntawm ib lub cev neeg rau zaub mov. Qhov no yuav tso cai rau txhua tus thawj tswj hwm lub hauv paus tswj hwm tag nrho IT infrastructure ntawm lub tuam txhab thiab txuag tau nyiaj ntau. Kev siv virtualization pab kom paub daws teeb meem ntau npaum li qhov ua tau los ntawm lub cev neeg rau zaub mov kho vajtse, tiv thaiv cov kev pabcuam tseem ceeb thiab yooj yim kho lawv cov haujlwm txawm tias muaj kev ua tsis tiav loj heev.

Tsis muaj qhov tsis ntseeg, feem ntau cov thawj tswj hwm tau paub txog cov txheej txheem ntawm kev ua haujlwm nrog ib puag ncig virtual thiab rau lawv tsab xov xwm no yuav tsis muaj kev tshawb pom. Txawm li cas los xij, muaj cov tuam txhab uas tsis siv qhov yooj yim thiab ceev ntawm cov kev daws teeb meem virtual vim tsis muaj cov ntaub ntawv tseeb txog lawv. Peb cia siab tias peb tsab xov xwm yuav pab koj nkag siab los ntawm kev piv txwv tias nws yooj yim dua los pib siv virtualization ib zaug dua kom paub qhov tsis yooj yim thiab tsis txaus ntawm lub cev kev tsim kho.

Hmoov zoo, nws yooj yim heev los sim seb virtualization ua haujlwm li cas. Peb yuav qhia yuav ua li cas los tsim ib tug neeg rau zaub mov hauv ib puag ncig virtual, piv txwv li, hloov CRM system siv hauv lub tuam txhab. Yuav luag txhua lub cev neeg rau zaub mov tuaj yeem hloov mus rau hauv ib qho virtual, tab sis ua ntej koj yuav tsum paub txog cov txheej txheem kev ua haujlwm yooj yim. Qhov no yuav tau tham hauv qab no.

Nws ua haujlwm li cas

Thaum nws los txog rau virtualization, ntau tus kws tshaj lij novice pom tias nws nyuaj rau kev nkag siab cov ntsiab lus, yog li cia peb piav ob peb lub ntsiab lus yooj yim:

  • Hypervisor - software tshwj xeeb uas tso cai rau koj los tsim thiab tswj cov tshuab virtual;
  • Tshuab virtual (tom qab no hu ua VM) yog lub kaw lus uas yog lub tshuab hluav taws xob hauv lub cev nrog nws tus kheej cov yam ntxwv, tsav thiab kev ua haujlwm;
  • Virtualization Host - lub cev server nrog lub hypervisor khiav ntawm nws.

Txhawm rau kom tus neeg rau zaub mov ua haujlwm ua tus tswv tsev virtualization tag nrho, nws cov processor yuav tsum txhawb nqa ib qho ntawm ob lub thev naus laus zis - xws li Intel® VT lossis AMD-V ™. Ob lub thev naus laus zis ua haujlwm tseem ceeb tshaj plaws ntawm kev muab cov khoom siv kho vajtse rau cov tshuab virtual.

Qhov tseem ceeb tshaj plaws yog tias txhua qhov kev ua ntawm cov tshuab virtual tau ua ncaj qha ntawm qib kho vajtse. Nyob rau tib lub sijhawm, lawv raug cais tawm ntawm ib leeg, uas ua rau nws yooj yim los tswj lawv cais. Tus neeg saib xyuas nws tus kheej ua lub luag haujlwm ntawm lub luag haujlwm saib xyuas, faib cov peev txheej, lub luag haujlwm thiab qhov tseem ceeb ntawm lawv. Lub hypervisor kuj ua raws li ib feem ntawm cov khoom siv kho vajtse uas tsim nyog rau kev ua haujlwm kom raug ntawm lub operating system.

Kev taw qhia ntawm virtualization ua rau nws muaj peev xwm ua kom muaj ntau cov ntawv luam ntawm ib lub server. Ib qho tseem ceeb tsis ua hauj lwm los yog ua yuam kev thaum lub sij hawm tus txheej txheem ntawm kev hloov mus rau xws li ib daim ntawv yuav tsis nyob rau hauv ib txoj kev muaj feem xyuam rau lub lag luam ntawm cov kev pab cuam tam sim no los yog daim ntawv thov. Qhov no tseem tshem tawm ob qhov teeb meem tseem ceeb - kev ntsuas thiab muaj peev xwm khaws "zoo" ntawm cov kev khiav hauj lwm sib txawv ntawm tib qho khoom siv. Qhov no yog lub sijhawm zoo tshaj plaws los muab ntau yam kev pabcuam yam tsis tas yuav yuav khoom sib cais rau lawv txhua tus.

Virtualization txhim kho qhov ua txhaum cai ntawm cov kev pabcuam thiab siv cov ntawv thov. Txawm hais tias lub cev neeg rau zaub mov tsis ua haujlwm thiab yuav tsum tau hloov nrog lwm tus, tag nrho cov txheej txheem virtual yuav ua haujlwm tag nrho, yog tias cov xov xwm disk tsis zoo. Hauv qhov no, lub cev neeg rau zaub mov tuaj yeem yog los ntawm cov chaw tsim khoom sib txawv kiag li. Qhov no yog qhov tseeb tshwj xeeb rau cov tuam txhab uas siv cov servers uas tau txiav tawm thiab yuav tsum tau tsiv mus rau lwm cov qauv.

Tam sim no peb teev cov hypervisors nrov tshaj plaws uas muaj nyob niaj hnub no:

  • VMware ESXi
  • Microsoft Hyper-V
  • Qhib Virtualization Alliance KVM
  • Oracle VM VirtualBox

Lawv txhua tus yog universal, txawm li cas los xij, txhua tus ntawm lawv muaj qee yam nta uas yuav tsum nco ntsoov coj mus rau hauv tus account thaum xaiv theem: tus nqi ntawm kev xa tawm / tu thiab cov yam ntxwv. Tus nqi ntawm cov ntawv tso cai ua lag luam rau VMware thiab Hyper-V yog qhov siab heev, thiab yog tias muaj kev ua tsis tiav, nws nyuaj heev los daws cov teeb meem nrog cov tshuab no ntawm koj tus kheej.

KVM, ntawm qhov tod tes, yog dawb kiag li thiab yooj yim heev rau siv, tshwj xeeb tshaj yog ua ib feem ntawm kev npaj ua Debian Linux-raws li kev daws teeb meem hu ua Proxmox Virtual Environment. Peb tuaj yeem pom zoo rau qhov system no rau thawj zaug paub nrog lub ntiaj teb ntawm virtual infrastructure.

Yuav ua li cas xa sai Proxmox VE hypervisor

Kev teeb tsa feem ntau tsis muaj lus nug. Download tau daim duab tam sim no los ntawm lub xeem qhov chaw thiab sau nws mus rau ib qho xov xwm sab nraud uas siv cov khoom siv hluav taws xob Win32DiskImager (hauv Linux cov lus txib dd yog siv), tom qab ntawd peb khau raj lub server ncaj qha los ntawm cov xov xwm no. Peb cov neeg siv khoom uas xauj cov servers los ntawm peb tuaj yeem ua kom zoo dua ntawm ob txoj hauv kev yooj yim dua - tsuas yog los ntawm kev txhim kho cov duab xav tau ncaj qha los ntawm KVM console, lossis siv peb PXE server.

Lub installer muaj ib tug graphical interface thiab tsuas yog nug ob peb lo lus nug.

  1. Xaiv lub disk uas lub installation yuav ua. Hauv tshooj Options Koj tseem tuaj yeem hais qhia cov kev xaiv markup ntxiv.

    Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE

  2. Qhia qhov chaw hauv cheeb tsam.

    Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE

  3. Qhia meej tus password uas yuav siv los tso cai rau tus neeg siv hauv paus thiab tus thawj tswj hwm tus email chaw nyob.

    Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE

  4. Qhia cov kev teeb tsa network. FQDN stands rau tag nrho cov tsim nyog sau npe, xws li. node01.yourcompany.com.

    Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE

  5. Tom qab kev teeb tsa tiav, tus neeg rau zaub mov tuaj yeem rov pib dua siv lub pob Reboot.

    Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE

    Lub web tswj interface yuav muaj nyob rau ntawm

    https://IP_адрес_сервера:8006

Yuav ua li cas tom qab installation

Muaj ob peb yam tseem ceeb uas koj yuav tsum ua tom qab txhim kho Proxmox. Cia peb tham txog txhua tus ntawm lawv kom ntxaws ntxiv.

Hloov kho qhov system mus rau qhov tseeb version

Txhawm rau ua qhov no, cia peb mus rau lub console ntawm peb cov neeg rau zaub mov thiab lov tes taw cov chaw khaws nyiaj them nyiaj (muaj tsuas yog rau cov uas tau yuav cov nyiaj them yug xwb). Yog tias koj tsis ua qhov no, apt yuav qhia txog qhov yuam kev thaum hloov kho pob khoom.

  1. Qhib lub console thiab kho cov ntaub ntawv apt configuration: 
    nano /etc/apt/sources.list.d/pve-enterprise.list
  2. Yuav muaj ib kab hauv cov ntaub ntawv no xwb. Peb muab ib lub cim rau pem hauv ntej ntawm nws #los lov tes taw tau txais cov hloov tshiab los ntawm lub chaw khaws nyiaj them nyiaj: 
    #deb https://enterprise.proxmox.com/debian/pve stretch pve-enterprise
  3. Keyboard shortcut Ctrl + X tawm ntawm tus editor los ntawm kev teb Y thaum nug los ntawm qhov system txog kev txuag cov ntaub ntawv.
  4. Peb khiav cov lus txib kom hloov tshiab pob khoom thiab hloov kho qhov system: 
    apt update && apt -y upgrade

Saib xyuas kev nyab xeeb

Peb tuaj yeem pom zoo kom txhim kho cov khoom siv nrov tshaj plaws Fail2Ban, uas tiv thaiv tus password tawm tsam (brute force). Lub hauv paus ntsiab lus ntawm nws txoj haujlwm yog tias yog tus neeg tawm tsam tshaj li qee tus lej nkag mus hauv lub sijhawm teev nrog tus ID nkag mus tsis raug / lo lus zais, ces nws tus IP chaw nyob yuav raug thaiv. Lub sijhawm thaiv thiab tus naj npawb ntawm kev sim tuaj yeem teev nyob rau hauv cov ntaub ntawv teeb tsa.

Raws li kev paub dhau los, lub sijhawm ib lub lim tiam ntawm kev khiav lub server nrog qhib ssh chaw nres nkoj 22 thiab qhov chaw nyob sab nraud IPv4 zoo li qub, muaj ntau dua 5000 sim twv tus password. Thiab qhov kev siv hluav taws xob ua tiav tau thaiv txog 1500 qhov chaw nyob.

Txhawm rau ua kom tiav lub installation, ntawm no yog qee cov lus qhia:

  1. Qhib lub server console ntawm lub web interface lossis SSH.
  2. Hloov tshiab pob qhov chaw: 
    apt update
  3. Nruab Fail2Ban: 
    apt install fail2ban
  4. Qhib cov khoom siv hluav taws xob rau kev kho kom raug: 
    nano /etc/fail2ban/jail.conf
  5. Hloov pauv hloov bantime (tus naj npawb ntawm cov vib nas this uas tus neeg tawm tsam yuav raug thaiv) thiab maxretry (tus naj npawb ntawm kev nkag mus / lo lus zais nkag sim) rau txhua qhov kev pabcuam.
  6. Keyboard shortcut Ctrl + X tawm ntawm tus editor los ntawm kev teb Y thaum nug los ntawm qhov system txog kev txuag cov ntaub ntawv.
  7. Rov pib qhov kev pabcuam: 
    systemctl restart fail2ban

Koj tuaj yeem tshawb xyuas cov xwm txheej ntawm cov khoom siv hluav taws xob, piv txwv li, tshem tawm cov ntaub ntawv thaiv ntawm cov chaw nyob IP uas tau sim ua phem rau SSH passwords, nrog rau ib qho lus txib yooj yim:

fail2ban-client -v status sshd

Kev siv hluav taws xob cov lus teb yuav zoo li no:

root@hypervisor:~# fail2ban-client -v status sshd
INFO   Loading configs for fail2ban under /etc/fail2ban
INFO     Loading files: ['/etc/fail2ban/fail2ban.conf']
INFO     Loading files: ['/etc/fail2ban/fail2ban.conf']
INFO   Using socket file /var/run/fail2ban/fail2ban.sock
Status for the jail: sshd
|- Filter
|  |- Currently failed: 3
|  |- Total failed:     4249
|  `- File list:        /var/log/auth.log
`- Actions
   |- Currently banned: 0
   |- Total banned:     410
   `- Banned IP list:

Ib yam li ntawd, koj tuaj yeem tiv thaiv Web interface los ntawm kev tawm tsam los ntawm kev tsim txoj cai tsim nyog. Ib qho piv txwv ntawm txoj cai no rau Fail2Ban tuaj yeem pom hauv phau ntawv official.

Pib

Kuv xav kos koj cov xim rau qhov tseeb tias Proxmox tau npaj los tsim cov tshuab tshiab tam sim tom qab kev teeb tsa. Txawm li cas los xij, peb xav kom koj ua tiav qhov kev teeb tsa ua ntej kom lub system tuaj yeem tswj tau yooj yim yav tom ntej. Kev xyaum qhia tau hais tias cov hypervisor thiab virtual tshuab yuav tsum tau muab faib ua ntau hom kev tshaj tawm. Yuav ua li cas thiaj yuav tau tham hauv qab no.

Configure disk drives

Cov kauj ruam tom ntej yog txhawm rau txhim kho kev khaws cia uas tuaj yeem siv los txuag cov ntaub ntawv tshuab virtual thiab thaub qab.

CEEB TOOM! Cov piv txwv disk layout hauv qab no tuaj yeem siv los kuaj lub hom phiaj nkaus xwb. Rau kev siv tiag tiag, peb xav kom siv software lossis kho vajtse RAID array los tiv thaiv cov ntaub ntawv poob thaum tsav tsis ua haujlwm. Peb yuav qhia rau koj paub yuav ua li cas npaj lub disk array kom zoo thiab yuav ua li cas thaum muaj xwm txheej ceev hauv ib qho ntawm cov kab lus hauv qab no.

Cia peb xav tias lub cev neeg rau zaub mov muaj ob lub disks − / dev / sda, uas lub hypervisor yog ntsia thiab ib tug khoob disk / dev / sdb, uas yog npaj los siv los khaws cov ntaub ntawv tshuab virtual. Txhawm rau kom lub kaw lus pom qhov tshiab cia, koj tuaj yeem siv txoj kev yooj yim tshaj plaws thiab siv tau zoo tshaj plaws - txuas rau nws raws li cov npe tsis tu ncua. Tab sis ua ntej ntawd, koj yuav tsum ua qee cov kauj ruam npaj. Ua piv txwv, cia saib yuav ua li cas txuas lub tsav tshiab / dev / sdb, txhua qhov loj me, formatting nws rau hauv cov ntaub ntawv kaw lus ext4.

  1. Peb faib lub disk, tsim ib qho kev faib tshiab: 
    fdisk /dev/sdb
  2. Nias tus yuam sij o los yog g (Pib faib cov disk hauv MBR lossis GPT).
  3. Tom ntej no, nias tus yuam sij n (tsim ib ntu tshiab).
  4. Thiab thaum kawg w (kom txuag tau kev hloov).
  5. Tsim ib qho ext4 cov ntaub ntawv system: 
    mkfs.ext4 /dev/sdb1
  6. Tsim ib tug directory qhov twg peb yuav mount lub muab faib: 
    mkdir /mnt/storage
  7. Qhib cov ntaub ntawv configuration rau editing: 
    nano /etc/fstab
  8. Ntxiv ib kab tshiab nyob ntawd: 
    /dev/sdb1	/mnt/storage	ext4	defaults	0	0
  9. Tom qab hloov pauv, txuag lawv nrog keyboard shortcut Ctrl + X, teb Y rau tus editor cov lus nug.
  10. Txhawm rau txheeb xyuas tias txhua yam ua haujlwm, peb xa cov server kom rov pib dua: 
    shutdown -r now
  11. Tom qab reboot, kos cov mounted partitions: 
    df -H

Cov zis ntawm cov lus txib yuav tsum qhia tias / dev / sdb1 mounted nyob rau hauv directory /mnt/storage. Qhov no txhais tau hais tias peb tsav yog npaj rau kev siv.

Ntxiv qhov chaw cia tshiab hauv Proxmox

Nkag mus rau hauv cov tswj vaj huam sib luag thiab mus rau cov ntu Data centerVaultNtxivPhau ntawv.

Nyob rau hauv lub qhov rais uas qhib, sau rau hauv cov nram qab no teb:

  • ID - lub npe ntawm lub chaw khaws cia yav tom ntej;
  • Phau ntawv - /mnt/cia;
  • Cov ntsiab lus - xaiv tag nrho cov kev xaiv (nias ntawm txhua qhov kev xaiv hauv lem).

    Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE

Tom qab no, nias lub pob Ntxiv. Qhov no ua tiav qhov kev teeb tsa.

Tsim lub tshuab virtual

Txhawm rau tsim lub tshuab virtual, ua cov haujlwm hauv qab no:

  1. Peb txiav txim siab rau lub version ntawm lub operating system.
  2. Download tau daim duab ISO ua ntej.
  3. Xaiv los ntawm cov ntawv qhia zaub mov Vault lub repository tshiab tsim.
  4. Laub Cov ntsiab lusdownload.
  5. Xaiv ib daim duab ISO los ntawm cov npe thiab paub meej tias kev xaiv los ntawm nias lub pob download.

Tom qab kev ua haujlwm tiav lawm, cov duab yuav tshwm rau hauv cov npe uas muaj.

Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE
Cia peb tsim peb lub tshuab virtual thawj zaug:

  1. Laub Tsim VM.
  2. Sau nyob rau hauv parameter ib tug los ntawm ib tug: lub npeISO-DuabHard drive loj thiab homTus naj npawb ntawm cov processorsRAM lojNetwork adapter.
  3. Thaum xaiv tag nrho cov kev xav tau, nyem Ua kom tiav. Lub tshuab tsim yuav raug tso tawm kom pom hauv cov ntawv qhia zaub mov.
  4. Xaiv nws thiab nyem Pib.
  5. Mus rau qhov taw tes Console thiab nruab qhov kev khiav hauj lwm qhov system raws nraim tib yam li ntawm lub cev neeg rau zaub mov.

Yog tias koj xav tsim lwm lub tshuab, rov ua cov haujlwm saum toj no. Thaum lawv tag nrho npaj txhij, koj tuaj yeem ua haujlwm nrog lawv ib txhij los ntawm kev qhib ob peb lub console windows.

Teeb tsa autorun

Los ntawm lub neej ntawd, Proxmox tsis cia li pib tshuab, tab sis qhov no tau yooj yim daws nrog tsuas yog ob nyem:

  1. Nyem rau ntawm lub npe ntawm lub tshuab xav tau.
  2. Xaiv ib lub tab XaivPib ntawm khau raj.
  3. Peb muab ib tug zuam ib sab ntawm lub inscription ntawm tib lub npe.

Tam sim no, yog tias tus neeg rau zaub mov lub cev tau rov pib dua, VM yuav pib txiav.

Cov khawv koob ntawm virtualization: ib qho kev qhia hauv Proxmox VE
Rau cov thawj tswj hwm qib siab, kuj tseem muaj lub sijhawm los qhia txog qhov kev tso tawm ntxiv hauv ntu Start/Shutdown order. Koj tuaj yeem qhia meej meej hauv qhov kev txiav txim ntawm cov tshuab yuav tsum pib. Koj tuaj yeem hais qhia lub sijhawm uas yuav tsum dhau ua ntej VM tom ntej pib thiab lub sijhawm kaw lub sijhawm ncua sijhawm (yog tias lub operating system tsis muaj sijhawm kaw, tus neeg saib xyuas yuav yuam kom kaw tom qab qee lub sijhawm).

xaus

Kab lus no tau piav qhia txog cov hauv paus ntsiab lus ntawm yuav ua li cas pib nrog Proxmox VE thiab peb cia siab tias nws yuav pab cov neeg tshiab ua thawj kauj ruam thiab sim virtualization hauv kev nqis tes ua.

Proxmox VE yog ib qho cuab yeej muaj zog heev thiab yooj yim rau txhua tus neeg khiav dej num; Qhov tseem ceeb tshaj plaws yog tsis txhob ntshai mus sim thiab nkag siab tias nws ua haujlwm li cas.

Yog tias koj muaj lus nug, txais tos rau cov lus pom.

Tau qhov twg los: www.hab.com

Ntxiv ib saib